RE: PIX without NAT. [7:48593]
Hi, I tried it before. Without NAT it didn't work, but you can do it using NAT; translating IP address to the same IP address. I suppose it's related to stateful inspection. Bulent -Original Message- From: Ivan [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 11, 2002 6:27 PM To: [EMAIL PROTECTED] Subject: PIX without NAT. [7:48593] Hello all, I have simple pix problems, can anyone help me?(Thank you very much) If I have a pix have two interface as the following: inside: 10.10.10.1 / 24 outside : 192.168.1.1 / 24 and without nat (nat 0 0 0), I think that that must can allow inside hosts to access outside, but can I allow the outside PC to access the inside's hosts? e.g. access-list 10 permit tcp any host 10.10.10.2 eq smtp (or any services) Thank you very much for your help Regards, Ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48660&t=48593 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NAT w Virtual Template intf ??? [7:48659]
Hallo, I am trying to cofigure NAT between an eth interface and a Virtual-template, so that VPDN users can get into a company LAN with NAT-ed addreses. It works randomly (sometimes yes sometimes no). Dis you have any experinces with that kind of problem ? I apreciate any answer. Tks ! Ira __ Do You Yahoo!? Sign up for SBC Yahoo! Dial - First Month Free http://sbc.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48659&t=48659 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: max number of letters? [7:48586]
Try - http://counter.li.org/reports/arearank.php?area=GB::Llanfairpwll "Howard C. Berkowitz" To: [EMAIL PROTECTED] Subject: RE: max number of letters? [7:48586] Sent by: nobody@groups tudy.com 11/07/2002 05:03 PM Please respond to "Howard C. Berkowitz" >I can't see there would be an RFC on how many letters can be used, >especially since acronyms have been used far longer than the acronym RFC has >been around Here's like an incredibly long acronym: (this URL >*will* wrap) > >http://acronyms.co.nz/cgi-bin/gonym?HERE%27S+TO+THE+CRAZY+ONES+%2D+THE+MISFITS, THE+REBELS, +THE+TROUBLEMAKERS%2E+THE+ROUND+PEGS+IN+THE+SQUARE+HOLES%2E+THE+ONES+WHO+SEE+THINGS+DIFFERENTLY%2E+THEY%27RE+NOT+FOND+OF+RULES, AND+THEY+HAVE+NO+RESPECT+FOR+THE+STATUS+QUO%2E+YOU+CAN+QUOTE+THEM, +DISAGREE+WITH+THEM, +GLORIFY+OR+VILIFY+THEM+%2D+ABOUT+THE+ONLY+THING+YOU+CAN%27T+DO+IS+IGNORE+THEM%2E+BECAUSE+THEY+CHANGE+THINGS%2E+THEY+PUSH+THE+HUMAN+RACE+FORWARD%2E+AND+WHILE+SOME+MAY+SEE+THEM+AS+THE+CRAZY+ONES, WE+SEE+GENIUS+%2D+BECAUSE+THE+PEOPLE+WHO+ARE+CRAZY+ENOUGH+TO+THINK+THEY+CAN+CHANGE+THE+WORLD+ARE+THE+ONES+WHO+DO%2E > >But here is (supposedly) the longest single word acronym: > >LLANFAIRPWLLGWYNGYLLGOGERYCHWYRNDROBWANTYSILIOGOGOGOCH Are you sure that isn't simply a place name in Wales? I thought I saw it on a road sign...that LL is a hint. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48662&t=48586 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX without NAT. [7:48593]
Hi, If I understand correctly, this cas has nothing to do with NAT. All you need to do is to create a static command. If you don't need to change address, use the same address for both inside and outside host. Here is the example : static (inside,outside) 10.10.10.2 10.10.10.2 netmask 255.255.255.255 0 0 This is required to allow traffic from a low security interface to a high security interface. In addition to static command, an access list is also required. This is working in a couple of my production environments. Best Regards, Ufuk Yasibeyli [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of B|lent ^ahin Sent: 12 Temmuz 2002 Cuma 10:25 To: [EMAIL PROTECTED] Subject: RE: PIX without NAT. [7:48593] Hi, I tried it before. Without NAT it didn't work, but you can do it using NAT; translating IP address to the same IP address. I suppose it's related to stateful inspection. Bulent -Original Message- From: Ivan [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 11, 2002 6:27 PM To: [EMAIL PROTECTED] Subject: PIX without NAT. [7:48593] Hello all, I have simple pix problems, can anyone help me?(Thank you very much) If I have a pix have two interface as the following: inside: 10.10.10.1 / 24 outside : 192.168.1.1 / 24 and without nat (nat 0 0 0), I think that that must can allow inside hosts to access outside, but can I allow the outside PC to access the inside's hosts? e.g. access-list 10 permit tcp any host 10.10.10.2 eq smtp (or any services) Thank you very much for your help Regards, Ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48661&t=48593 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Video Conferencing [7:48646]
We are using it. The person who is developing it for our team is jumping through alot of hoops. Some of the hoops are company defined ones others are Ciscos. So far we have been able to do long distance VC (Toronto to Florida) and a few other places without too much trouble. It seems to be in the later stages of development, thus you need to do your share of research. He is currently working on Site to Multicast (boss to employee desktops) scenario as opposed to Site to Site. This one is a challenge. If you are currently using it and have any pointers he would probably appreciate it. Kim > > From: "Johnson, Richard (NY Int)" > Date: 2002/07/11 Thu PM 10:47:50 EDT > To: [EMAIL PROTECTED] > Subject: Cisco Video Conferencing [7:48646] > > Hi All, > > Is anyone out there currently using it? If so what are your opinions of it? > > > Thanks > > Rich Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48663&t=48646 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX without NAT. [7:48593]
Hi, I think there is misunderstanding about NAT. I used NAT as Network Address Translation, not the command. According to my knowledge the static command is used for Network Address Translation and with the command "static (inside,outside) 10.10.10.2 10.10.10.2 netmask 255.255.255.255 0 0", an address translantion definition from "10.10.10.2" to "10.10.10.2" can be created. Bulent -Original Message- From: Ufuk Yasibeyli [mailto:[EMAIL PROTECTED]] Sent: Friday, July 12, 2002 11:23 AM To: [EMAIL PROTECTED] Subject: RE: PIX without NAT. [7:48593] Hi, If I understand correctly, this cas has nothing to do with NAT. All you need to do is to create a static command. If you don't need to change address, use the same address for both inside and outside host. Here is the example : static (inside,outside) 10.10.10.2 10.10.10.2 netmask 255.255.255.255 0 0 This is required to allow traffic from a low security interface to a high security interface. In addition to static command, an access list is also required. This is working in a couple of my production environments. Best Regards, Ufuk Yasibeyli [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of B|lent ^ahin Sent: 12 Temmuz 2002 Cuma 10:25 To: [EMAIL PROTECTED] Subject: RE: PIX without NAT. [7:48593] Hi, I tried it before. Without NAT it didn't work, but you can do it using NAT; translating IP address to the same IP address. I suppose it's related to stateful inspection. Bulent -Original Message- From: Ivan [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 11, 2002 6:27 PM To: [EMAIL PROTECTED] Subject: PIX without NAT. [7:48593] Hello all, I have simple pix problems, can anyone help me?(Thank you very much) If I have a pix have two interface as the following: inside: 10.10.10.1 / 24 outside : 192.168.1.1 / 24 and without nat (nat 0 0 0), I think that that must can allow inside hosts to access outside, but can I allow the outside PC to access the inside's hosts? e.g. access-list 10 permit tcp any host 10.10.10.2 eq smtp (or any services) Thank you very much for your help Regards, Ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48664&t=48593 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco Video Conferencing [7:48646]
All of the IP/TV stuff is designed for just this feature. Does he want to just give speeches or is he looking for interactive video response? Even with the IP/TV stuff you can click a button to submit online questions to the presenter. Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kim Graham Sent: Friday, July 12, 2002 6:23 AM To: [EMAIL PROTECTED] Subject: Re: Cisco Video Conferencing [7:48646] We are using it. The person who is developing it for our team is jumping through alot of hoops. Some of the hoops are company defined ones others are Ciscos. So far we have been able to do long distance VC (Toronto to Florida) and a few other places without too much trouble. It seems to be in the later stages of development, thus you need to do your share of research. He is currently working on Site to Multicast (boss to employee desktops) scenario as opposed to Site to Site. This one is a challenge. If you are currently using it and have any pointers he would probably appreciate it. Kim > > From: "Johnson, Richard (NY Int)" > Date: 2002/07/11 Thu PM 10:47:50 EDT > To: [EMAIL PROTECTED] > Subject: Cisco Video Conferencing [7:48646] > > Hi All, > > Is anyone out there currently using it? If so what are your opinions of it? > > > Thanks > > Rich Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48665&t=48646 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: callmanager and unity [7:48651]
i think you can't do them because unity need SQL2000 and call manager need SQL7. Both SQL can't be installed in the same machine. ""supernet"" I wonder if I can install both callmanager and unity on 1 machine. > Anyone did this? > > Thanks. > Yoshi Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48666&t=48651 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: callmanager and unity [7:48651]
Rayon Actually you can install an instance of MS SQL 7.0 and MS SQL 2000 on the same machine. You may need to set up some sort of db or table synchro if you want to ensure data consistency between to two instances. Mike -Original Message- From: $H [mailto:[EMAIL PROTECTED]] Sent: 12 July 2002 01:21 PM To: [EMAIL PROTECTED] Subject: Re: callmanager and unity [7:48651] i think you can't do them because unity need SQL2000 and call manager need SQL7. Both SQL can't be installed in the same machine. ""supernet"" I wonder if I can install both callmanager and unity on 1 machine. > Anyone did this? > > Thanks. > Yoshi Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48667&t=48651 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OSPF problem [7:48463]
I think it is ur misconfiguration on the interfaces. In fact, OSPF will not need a 'backbond' is there is only one area. On Wed, 10 Jul 2002 04:18:45 GMT "John Brandis" wrote: > I have the following error whilst playing with OSPF > > 12:52:40: %OSPF-4-ERRRCV: Received invalid packet: mismatch area ID, from > backbone area must be virtual-link but not found from 10.1.4.20, Ethernet0 > > I have 2 routers, Router A and Router B, back to back. Able to get the 2 > connected, however when I > (Router A) > router ospf 20 > network 10.1.10.0 0.0.0.0 area 20 > > (RouterB) > router ospf 20 > network 192.168.1.0 0.0.0.0 area 20 > > Should I define different areas ? > > Thanks for your time > > John > > > ** > > visit http://www.solution6.com > visit http://www.eccountancy.com - everything for accountants. > > UK Customers - http://www.solution6.co.uk > > * > This email message (and attachments) may contain information that is > confidential to Solution 6. If you are not the intended recipient you cannot > use, distribute or copy the message or attachments. In such a case, please > notify the sender by return email immediately and erase all copies of the > message and attachments. Opinions, conclusions and other information in > this message and attachments that do not relate to the official business of > Solution 6 are neither given nor endorsed by it. > * Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48668&t=48463 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Router Simulation software up to CCNP Level [7:48669]
Hello, I am a CCNP, working towards security certification. I am worried that I'll gradually get de-skilled, if I am not actively working in the Routing & Switching environment. And cannot afford to set up a Lab now. Are there any Simulation software I can install on my laptop and use from time to time. Thanks for your time Kerry Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48669&t=48669 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RES: ISDN and CCNP [7:48647]
For sure - BCRAN test. Paulo -Mensagem original- De: Alejandro Acosta A [mailto:[EMAIL PROTECTED]] Enviada em: quinta-feira, 11 de julho de 2002 23:48 Para: [EMAIL PROTECTED] Assunto: ISDN and CCNP [7:48647] Hello, I just passed two weeks ago the CCNA exam, and now, I want to prepare for CCNP. My question is: ISDN concepts are necessary for any of the CCNP exams?. Thanks Alejandro Acosta Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48671&t=48647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX without NAT. [7:48593]
Hi again, I am sorry for mixing up. Yes, I assumed nat command and static is indeed a NAT. Regards, Ufuk. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of B|lent ^ahin Sent: 12 Temmuz 2002 Cuma 13:49 To: [EMAIL PROTECTED] Subject: RE: PIX without NAT. [7:48593] Hi, I think there is misunderstanding about NAT. I used NAT as Network Address Translation, not the command. According to my knowledge the static command is used for Network Address Translation and with the command "static (inside,outside) 10.10.10.2 10.10.10.2 netmask 255.255.255.255 0 0", an address translantion definition from "10.10.10.2" to "10.10.10.2" can be created. Bulent Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48672&t=48593 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco IP Telephony [7:48673]
We are thinking about getting Cisco's IP Telephony equipment. Is anyone using it. If so, can you tell me your thoughts about it (success/failure stories). Did it replace your phone lines or run in paralell? Are you still able to make 800 and 911 calls with the IP phones. Thanks for any information. Naomi James Computer Services and Information Technology Savannah State University 912-356-2509 [GroupStudy.com removed an attachment of type image/gif which had a name of Mabelt.gif] [GroupStudy.com removed an attachment of type image/gif which had a name of Mabelb.gif] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48673&t=48673 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: callmanager and unity [7:48651]
It's theoretically possible to install both, but it's not a supported configuration. Frank Jimenez, CCIE #5738 [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of supernet Sent: Thursday, July 11, 2002 10:43 PM To: [EMAIL PROTECTED] Subject: callmanager and unity [7:48651] I wonder if I can install both callmanager and unity on 1 machine. Anyone did this? Thanks. Yoshi Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48675&t=48651 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco IP Telephony [7:48673]
VERY STRONG RECOMMENDATION: call a couple of experienced integrators and start the education process. You want as much input as possible - this is not something you want to even dream about doing if you and your organization do not have solid VoIP experience. some VARs may be willing to do an on site pilot. to do it right, expect a process as long a 18 months. In general, the answers for you are yes, yes, yes. AVVID works and works well. it may take a lot of tweaking and constant monitoring. an organization like yours most definitely wants to do things in parallel, to replace dial tone with AVVID in planned phases. got bucks? 'cuz AVVID can be pricey. All your costs are up front. Unless you have extensive toll bypass possibilities, the only place you will see any real savings is cost of MAC work over time. best wishes ""Naomi James"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > We are thinking about getting Cisco's IP Telephony equipment. Is anyone > using it. If so, can you tell me your thoughts about it (success/failure > stories). Did it replace your phone lines or run in paralell? Are you > still able to make 800 and 911 calls with the IP phones. > > Thanks for any information. > > Naomi James > Computer Services and Information Technology > Savannah State University > 912-356-2509 > > [GroupStudy.com removed an attachment of type image/gif which had a name of > Mabelt.gif] > > [GroupStudy.com removed an attachment of type image/gif which had a name of > Mabelb.gif] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48676&t=48673 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Terminal server configuration [7:48678]
I am trying to get my 2621 with an nm-16a working so that I can allow a few people I study with to use my home lab. I don't want to give them the full enable secret password because then someone could remove my configuration. This terminal server also gives me my home network connectivity.basically what I'm saying is I don't want somebody to be able to change the enable secret, or shut my interfaces down on the terminal server itself. I made an enable level 2, and did this under it: privilege exec level 2 telnet. When I telnet to the terminal server, then do enable level 2 etc it logs in fine. But it won't lookup the "ip host blah blah" when I type the name of the host I'm trying to connect to. Is there something stupid that I am missing here? Can anyone help? Here is a full config just to show everyone what I've got going on here: 2621#sh run Building configuration... Current configuration : 2674 bytes ! ! Last configuration change at 08:15:53 GMT Fri Jul 12 2002 ! NVRAM config last updated at 07:40:47 GMT Fri Jul 12 2002 ! version 12.2 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname 2621 ! no logging console enable secret level 2 5 cut enable secret 5 cut ! username cut privilege 0 password 0 cut memory-size iomem 10 clock timezone GMT -6 ip subnet-zero ! ! no ip domain-lookup ip host s3550 2040 192.169.1.4 ip host s2924 2039 192.169.1.4 ip host m2502 2038 192.169.1.4 ip host s1912 2037 192.169.1.4 ip host t4500 2034 192.169.1.4 ip host b2501 2035 192.169.1.4 ip host t2501 2036 192.169.1.4 ip host b4500 2033 192.169.1.4 ! ip audit notify log ip audit po max-events 100 ! call rsvp-sync ! ! ! ! ! ! ! ! interface Loopback0 ip address 192.169.1.4 255.255.255.255 no ip route-cache no ip mroute-cache ! interface FastEthernet0/0 mac-address 0010.5a19.8da7 ip address cut 255.255.255.0 no ip redirects no ip unreachables no ip proxy-arp ip nat outside no ip route-cache no ip mroute-cache duplex auto speed auto ! interface Serial0/0 no ip address shutdown ! interface FastEthernet0/1 ip address 192.168.0.1 255.255.255.0 no ip redirects no ip proxy-arp ip nat inside no ip route-cache no ip mroute-cache speed auto full-duplex ! interface Dialer1 no ip address no cdp enable ! ip nat inside source list 1 interface FastEthernet0/0 overload ip nat inside source static tcp 192.168.0.2 21 cut 21 extendable ip nat inside source static tcp 192.168.0.2 80 cut 80 extendable ip classless ip route 0.0.0.0 0.0.0.0 24.216.101.1 ip route 192.168.2.0 255.255.255.0 192.168.0.3 ip route 192.168.3.0 255.255.255.0 192.168.0.3 no ip http server ip pim bidir-enable ! logging 192.168.0.2 access-list 1 permit 192.168.0.0 0.0.255.255 ! snmp-server engineID local 8009033019713E80 no snmp-server enable traps tty ! dial-peer cor custom ! ! ! ! privilege exec level 2 telnet ! line con 0 exec-timeout 0 0 logging synchronous line 33 48 session-timeout 5 exec-timeout 0 0 flush-at-activation no exec transport input telnet line aux 0 line vty 0 4 exec-timeout 0 0 password cut login transport input telnet transport output none ! ntp clock-period 17180185 ntp server 139.78.100.163 end TIA Dan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48678&t=48678 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco IP Telephony [7:48673]
Well, I don't work for anyone using it but I have been to Cisco's NY Office and seen the phones work myself. You would not know the difference from an office phone using the PBX. You still do the normal stuff like dial 9 to get outside and dial the area code and phone number. The beauty of course lies in the mobility of the phones. -ALE -Original Message- From: Naomi James [mailto:[EMAIL PROTECTED]] Sent: Friday, July 12, 2002 9:47 AM To: [EMAIL PROTECTED] Subject: Cisco IP Telephony [7:48673] We are thinking about getting Cisco's IP Telephony equipment. Is anyone using it. If so, can you tell me your thoughts about it (success/failure stories). Did it replace your phone lines or run in paralell? Are you still able to make 800 and 911 calls with the IP phones. Thanks for any information. Naomi James Computer Services and Information Technology Savannah State University 912-356-2509 [GroupStudy.com removed an attachment of type image/gif which had a name of Mabelt.gif] [GroupStudy.com removed an attachment of type image/gif which had a name of Mabelb.gif] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48679&t=48673 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Terminal server configuration [7:48678]
a couple of things - you set the privilege level very low. most commands have a default level of 7 or so IIRC. you could do login local, and associate privilege level with the local login. set that level at 1 or 2. set the enable level at 10. or you could change the privilege level of only those commands you want the user to see to a much lower level. I think really all they need is show hosts, show sessions, maybe show users, and the clear line functions. HTH ""Dan Penn"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I am trying to get my 2621 with an nm-16a working so that I can allow a > few people I study with to use my home lab. I don't want to give them > the full enable secret password because then someone could remove my > configuration. This terminal server also gives me my home network > connectivity.basically what I'm saying is I don't want somebody to be > able to change the enable secret, or shut my interfaces down on the > terminal server itself. I made an enable level 2, and did this under > it: privilege exec level 2 telnet. When I telnet to the terminal > server, then do enable level 2 etc it logs in fine. But it won't lookup > the "ip host blah blah" when I type the name of the host I'm trying to > connect to. > > Is there something stupid that I am missing here? > > Can anyone help? > > Here is a full config just to show everyone what I've got going on here: > > 2621#sh run > Building configuration... > > Current configuration : 2674 bytes > ! > ! Last configuration change at 08:15:53 GMT Fri Jul 12 2002 > ! NVRAM config last updated at 07:40:47 GMT Fri Jul 12 2002 > ! > version 12.2 > service timestamps debug uptime > service timestamps log uptime > no service password-encryption > ! > hostname 2621 > ! > no logging console > enable secret level 2 5 cut > enable secret 5 cut > ! > username cut privilege 0 password 0 cut > memory-size iomem 10 > clock timezone GMT -6 > ip subnet-zero > ! > ! > no ip domain-lookup > ip host s3550 2040 192.169.1.4 > ip host s2924 2039 192.169.1.4 > ip host m2502 2038 192.169.1.4 > ip host s1912 2037 192.169.1.4 > ip host t4500 2034 192.169.1.4 > ip host b2501 2035 192.169.1.4 > ip host t2501 2036 192.169.1.4 > ip host b4500 2033 192.169.1.4 > ! > ip audit notify log > ip audit po max-events 100 > ! > call rsvp-sync > ! > ! > ! > ! > ! > ! > ! > ! > interface Loopback0 > ip address 192.169.1.4 255.255.255.255 > no ip route-cache > no ip mroute-cache > ! > interface FastEthernet0/0 > mac-address 0010.5a19.8da7 > ip address cut 255.255.255.0 > no ip redirects > no ip unreachables > no ip proxy-arp > ip nat outside > no ip route-cache > no ip mroute-cache > duplex auto > speed auto > ! > interface Serial0/0 > no ip address > shutdown > ! > interface FastEthernet0/1 > ip address 192.168.0.1 255.255.255.0 > no ip redirects > no ip proxy-arp > ip nat inside > no ip route-cache > no ip mroute-cache > speed auto > full-duplex > ! > interface Dialer1 > no ip address > no cdp enable > ! > ip nat inside source list 1 interface FastEthernet0/0 overload > ip nat inside source static tcp 192.168.0.2 21 cut 21 extendable > ip nat inside source static tcp 192.168.0.2 80 cut 80 extendable > ip classless > ip route 0.0.0.0 0.0.0.0 24.216.101.1 > ip route 192.168.2.0 255.255.255.0 192.168.0.3 > ip route 192.168.3.0 255.255.255.0 192.168.0.3 > no ip http server > ip pim bidir-enable > ! > logging 192.168.0.2 > access-list 1 permit 192.168.0.0 0.0.255.255 > ! > snmp-server engineID local 8009033019713E80 > no snmp-server enable traps tty > ! > dial-peer cor custom > ! > ! > ! > ! > privilege exec level 2 telnet > ! > line con 0 > exec-timeout 0 0 > logging synchronous > line 33 48 > session-timeout 5 > exec-timeout 0 0 > flush-at-activation > no exec > transport input telnet > line aux 0 > line vty 0 4 > exec-timeout 0 0 > password cut > login > transport input telnet > transport output none > ! > ntp clock-period 17180185 > ntp server 139.78.100.163 > end > > TIA > > Dan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48682&t=48678 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco IP Telephony [7:48673]
you save on maintenance costs as well (or leasing if you do that) I say buy it. ""Chuck"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > VERY STRONG RECOMMENDATION: > > call a couple of experienced integrators and start the education process. > You want as much input as possible - this is not something you want to even > dream about doing if you and your organization do not have solid VoIP > experience. some VARs may be willing to do an on site pilot. to do it > right, expect a process as long a 18 months. > > In general, the answers for you are yes, yes, yes. AVVID works and works > well. it may take a lot of tweaking and constant monitoring. an organization > like yours most definitely wants to do things in parallel, to replace dial > tone with AVVID in planned phases. > > got bucks? 'cuz AVVID can be pricey. All your costs are up front. Unless you > have extensive toll bypass possibilities, the only place you will see any > real savings is cost of MAC work over time. > > best wishes > > > ""Naomi James"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > We are thinking about getting Cisco's IP Telephony equipment. Is anyone > > using it. If so, can you tell me your thoughts about it (success/failure > > stories). Did it replace your phone lines or run in paralell? Are you > > still able to make 800 and 911 calls with the IP phones. > > > > Thanks for any information. > > > > Naomi James > > Computer Services and Information Technology > > Savannah State University > > 912-356-2509 > > > > [GroupStudy.com removed an attachment of type image/gif which had a name > of > > Mabelt.gif] > > > > [GroupStudy.com removed an attachment of type image/gif which had a name > of > > Mabelb.gif] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48680&t=48673 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router for Practice [7:48654]
Brad, No more need for 2504,s?. Reza ""Brad Ellis"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Here's the lab kit Im recommending to tackle the new and improved CCIE R&S > Lab Exam: > > Three Cisco 2501 routers > Two Cisco 2503 routers (ISDN) > One Cisco 2511 router (Access Server) > One Cisco 2522 router (FR switch) > One 2620 router (voice/isl trunking) > One 2610 router (voice) > Catalyst 3550 > ISDN Simulator > misc cables, xcvrs, etc > > thanks, > -Brad Ellis > CCIE#5796 (R&S / Security) > Network Learning Inc > [EMAIL PROTECTED] > www.optsys.net (Cisco hardware) > > ""R.S.Sundar"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hello All, > > > > I would like to know what router configuration to be purchased > > for practicising CCIE Routing and Switching Lab Exam. > > > > Please give the details of book also if possible. > > > > Regards, > > R.S.Sundar > > System Support Manager > > Future Software Limited > > > > > *** > > This message is proprietary to Future Software Limited (FSL) > > and is intended solely for the use of the individual to whom it > > is addressed. It may contain privileged or confidential information > > and should not be circulated or used for any purpose other than for > > what it is intended. > > > > If you have received this message in error, please notify the > > originator immediately. If you are not the intended recipient, > > you are notified that you are strictly prohibited from using, > > copying, altering, or disclosing the contents of this message. > > FSL accepts no responsibility for loss or damage arising from > > the use of the information transmitted by this email including > > damage from virus. > > > *** Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48677&t=48654 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Router Simulation software up to CCNP Level [7:48669]
Kerry, Go to Amazon.com and search for Cisco Interactive Mentor and you will see the ones that are available - new and used. I bought all of them used for less than $70.00 each. You can also go to the following websites: http://www.realrouterlabs.com/ http://www.practicelabs.net/ http://www.fatkid.com/ These are inexpensive real live racks to use for your practice sessions. -ALE -Original Message- From: Kerry [mailto:[EMAIL PROTECTED]] Sent: Friday, July 12, 2002 8:36 AM To: [EMAIL PROTECTED] Subject: Router Simulation software up to CCNP Level [7:48669] Hello, I am a CCNP, working towards security certification. I am worried that I'll gradually get de-skilled, if I am not actively working in the Routing & Switching environment. And cannot afford to set up a Lab now. Are there any Simulation software I can install on my laptop and use from time to time. Thanks for your time Kerry Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48681&t=48669 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco IP Telephony [7:48673]
I setup call mangler for us to replace our analog system. It's been pretty much a work horse for the past 5 months. From my experience, it's a pain in the butt to set it up, but if you set it up right, it's awesome. I cant say enough good things about it (after it's setup...the setting up part sucks) We did a straight out full replace (but we only have 6 or so phones and 4 analog lines to deal with). If you have more than 15 phones, I'd go with a planned parallel migration route. Just my thoughts thanks, -Brad Ellis CCIE#5796 (R&S / Security) Network Learning Inc [EMAIL PROTECTED] www.optsys.net (Cisco hardware) ""Naomi James"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > We are thinking about getting Cisco's IP Telephony equipment. Is anyone > using it. If so, can you tell me your thoughts about it (success/failure > stories). Did it replace your phone lines or run in paralell? Are you > still able to make 800 and 911 calls with the IP phones. > > Thanks for any information. > > Naomi James > Computer Services and Information Technology > Savannah State University > 912-356-2509 > > [GroupStudy.com removed an attachment of type image/gif which had a name of > Mabelt.gif] > > [GroupStudy.com removed an attachment of type image/gif which had a name of > Mabelb.gif] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48674&t=48673 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: callmanager and unity [7:48651]
Yes, you can do that. It's not recommended, but it can be done. Installation Order: 1) Windows 2000 2) Windows 2000 Service Pack 2 3) Internet Explorer 5.5 4) Windows 2000 call mangler OS upgrade 5) Callmangler (whatever version + multiple service packs) 6) Setup the server as a domain controller 7) Exchange 5.5 8) Exchange 5.5 Service Pack 4 9) Unity that's the quick and dirty run-down for ya. I dont think I missed anything, but if scott morris sees this, Im sure he can validate it or let you know what I missed/skipped. thanks, -Brad Ellis CCIE#5796 (R&S / Security) Network Learning Inc [EMAIL PROTECTED] www.optsys.net (Cisco hardware) ""supernet"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I wonder if I can install both callmanager and unity on 1 machine. > Anyone did this? > > Thanks. > Yoshi Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48658&t=48651 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router Simulation software up to CCNP Level [7:48669]
try boson sim at www.boson.com >>> "Kerry" 07/12/02 02:36PM >>> Hello, I am a CCNP, working towards security certification. I am worried that I'll gradually get de-skilled, if I am not actively working in the Routing & Switching environment. And cannot afford to set up a Lab now. Are there any Simulation software I can install on my laptop and use from time to time. Thanks for your time Kerry Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48670&t=48669 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Router Simulation software up to CCNP Level [7:48669]
Try the Cisco Interactive Mentor series. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Kerry Sent: Friday, July 12, 2002 8:36 AM To: [EMAIL PROTECTED] Subject: Router Simulation software up to CCNP Level [7:48669] Hello, I am a CCNP, working towards security certification. I am worried that I'll gradually get de-skilled, if I am not actively working in the Routing & Switching environment. And cannot afford to set up a Lab now. Are there any Simulation software I can install on my laptop and use from time to time. Thanks for your time Kerry Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48683&t=48669 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Terminal server configuration [7:48678]
Okay here is what i have now Chuck: I did 2621(config)#priv exec level 8 show line 2621(config)#priv exec level 8 clear line 2621(config)#priv exec level 8 show session 2621(config)#priv exec level 8 show host And assigned a password to level 8 Then telneted in, used the telnet password, did "enable 8". Did a show host. It shows me the hosts, and this is what i get: 2621#sh host Default domain is not set Name/address lookup uses static mappings Host Port Flags Age Type Address(es) s3550 2040 (perm, OK) 1 IP192.169.1.4 Then, when I do s3550, I get: 2621#s3550 % Unknown command or computer name, or unable to find computer address Do I need something to allow reverse telnet? I appreicate the time, Dan Chuck wrote: > > a couple of things - you set the privilege level very low. most > commands > have a default level of 7 or so IIRC. > > you could do login local, and associate privilege level with > the local > login. set that level at 1 or 2. set the enable level at 10. > > or you could change the privilege level of only those commands > you want the > user to see to a much lower level. I think really all they need > is show > hosts, show sessions, maybe show users, and the clear line > functions. > > HTH Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48684&t=48678 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IPTel QoS: Classification vs Marking [7:48645]
Classification is the process of putting traffic into a class. Whereas, marking is the process of marking the class with a distinct identifier. Traffic can be classified based upon different values such as source IP address, DSCP value, IP precedence value, MPLS experimental value, port number, When traffic enters the ingress interface of a device it will be classified, if classification is configured. Once traffic has been classified, the traffic will be marked based upon its classification. Traffic can be marked using a DSCP value, IP precedence value, ToS bits, or QoS group number. This marked value is what tells the other devices the level of service to provide to the traffic. Traffic can also be remarked. Remarking traffic occurs when the traffic has already been marked with a value and then that value gets replaced with another value. The reason you always see these two QoS mechanism clumped together is because, typically, the same technology performs classification and marking, such as CAR or Class-based marking. I hope this helps. Carl Timm, CCIE# 7149 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48685&t=48645 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: The release date of the new CCIE written exam [7:48627]
Is this only for Routing and Switching? Or are all the written exams changing? Thanks, Way Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48686&t=48627 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Terminal server configuration [7:48678]
Okay, figured it out. Imagine this: If you have vty 0 4 transput output none that reverse telnet doesn't work =) Thanks for the help anyways Chuck! Dan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48687&t=48678 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Class C summarization question [7:48367]
Just to jump in late on this, but... The question doesn't ask how many of those class "C" are usable, which would be dependant on subnet O, but instead the question was how many you would be able to summarize. A /20 would in fact summarize 16, 14 of which are useable without subnet zero... Thanks Larry -Original Message- From: Dain Deutschman [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 10, 2002 4:05 PM To: [EMAIL PROTECTED] Subject: Re: Class C summarization question [7:48367] Hey everyone, Thanks for all of your help. I have decided that 16 must be correct since it makes perfect sense and most of you back that up as well. I think the test question was just plain wrong. Anyway...I passed the CCNP Routing exam today so I'm pretty happy. : ) Groupstudy is a great learning resource. Thanks everyone. Dain. ""Dain Deutschman"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm confused about a practice question for BSCN that I came across: > > Your routing tables are getting very large and you need to configure > route summarization. How many class C internet addresses can you > summarize with a > /20 CIDR block? > > Answer: 8 > > Would it not be 16? Where am I going wrong? > > -- > Dain Deutschman > CNA, MCP, CCNA > Data Communications Manager > New Star Sales and Service, Inc. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48688&t=48367 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Exercise for Chuck (was RE: Terminal server configuration [7:48697]
>Okay, figured it out. > >Imagine this: > >If you have >vty 0 4 > transput output none > >that reverse telnet doesn't work =) > >Thanks for the help anyways Chuck! > >Dan > As an exercise for Chuck, we leave the question, why isn't reverse telnet the tenlet protocol? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48697&t=48697 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Exercise for Chuck (was RE: Terminal server configuration [7:48698]
""Howard C. Berkowitz"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > >Okay, figured it out. > > > >Imagine this: > > > >If you have > >vty 0 4 > > transput output none > > > >that reverse telnet doesn't work =) > > > >Thanks for the help anyways Chuck! > > > >Dan > > > > As an exercise for Chuck, we leave the question, why isn't reverse > telnet the tenlet protocol? > > CL: Lord knows I need the exercise... ;-> CL: pardon me for being dense, but is the question why isn't the command "transport input / output reverse telnet"? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48698&t=48698 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
View Interface Traffic: Any quick way? [7:48700]
Is there a quick and nifty way of viewing interface stats on a switch with a zillion ports instead of doing sho int mod/port? If you've a Cat6509 populated with like 5 or so 48-port modules, you don't want to be going through each one in such a fashion. At least, I don't. I want to be able to tell at a glance the input/output traffic stats on all ports but from the command line. Is this possible at all? If you do know of any such method, do you mind sharing? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48700&t=48700 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Where are the networking jobs? (was: question to CCIEs) [7:48701]
Hi All, It's distressing to look at the current economy with waves of lay-offs everywhere. I heard that people with 7-9 yrs of hands-on cisco experience + CCNP + CCDP are not getting a job for 4-6 months ... lo and behold, my register can't sustain that longgg period of unemployment, let alone earning figures suggested by TCPMAG.com recent survey. So, if you only have 1 shot to relocate anywhere within the U.S for the purpose of finding employment in networking line, which city/metro would you go? Anyone would like to throw in their two cents worth? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48701&t=48701 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Exercise for Chuck (was RE: Terminal server configuration [7:48702]
>""Howard C. Berkowitz"" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... >> >Okay, figured it out. >> > >> >Imagine this: >> > >> >If you have >> >vty 0 4 >> > transput output none >> > >> >that reverse telnet doesn't work =) >> > >> >Thanks for the help anyways Chuck! >> > >> >Dan >> > >> >> As an exercise for Chuck, we leave the question, why isn't reverse >> telnet the tenlet protocol? >> >> > >CL: Lord knows I need the exercise... ;-> > >CL: pardon me for being dense, but is the question why isn't the command >"transport input / output reverse telnet"? > Sir, it is only due to our long friendship that I can forgive you for bringing logic to our masked ball. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48702&t=48702 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re[2]: OSPF problem [7:48463]
Whether the first area is 0 is not the point. RFC design AREA 0 is only for inter-area (please remember this) traffic. So why we need AREA 0 when we had only one area? If u believe in Jeff Doylee, check his 'Routing TCP/IP volume 1' on Page 313. And I had copy one paragraph from this page as follow: "Figure 9.61 shows an OSPF internetwork. Note that each area has an assigned IP address from which its subnets are derived. Limiting an area to a single address or subnet is not necessary, but doing so has significant advantages, as will be seen in a later case study on address summarization. Note also that this example is designed to demonstrate the configuration of multiple areas. In "real life," it would be much wiser to put such a small internetwork within a single area. Further, that single area does not have to be area 0. The rule is that all areas must connect to the backbone; therefore, a backbone area is needed only if there is more than one area." See the last sentence? "a backbone area is needed only if there is more than one area." So just let us stop the quarreling on backbone:) I am 'paper' only because I had no time to practise:( On Fri, 12 Jul 2002 08:57:11 -0500 "Wilson, Christian" wrote: > You must use Area 0 if you are only using one area. All OSPF > implementations need an area 0. Even if you are using multiple areas, the > first area configured must be area 0. > > > -Original Message- > > From: thinkworker [SMTP:[EMAIL PROTECTED]] > > Sent: Friday, July 12, 2002 6:56 AM > > To: [EMAIL PROTECTED] > > Subject:Re: OSPF problem [7:48463] > > > > I think it is ur misconfiguration on the interfaces. > > > > In fact, OSPF will not need a 'backbond' is there is only one area. > > > > On Wed, 10 Jul 2002 04:18:45 GMT > > "John Brandis" wrote: > > > > > I have the following error whilst playing with OSPF > > > > > > 12:52:40: %OSPF-4-ERRRCV: Received invalid packet: mismatch area ID, > > from > > > backbone area must be virtual-link but not found from 10.1.4.20, > > Ethernet0 > > > > > > I have 2 routers, Router A and Router B, back to back. Able to get the 2 > > > connected, however when I > > > (Router A) > > > router ospf 20 > > > network 10.1.10.0 0.0.0.0 area 20 > > > > > > (RouterB) > > > router ospf 20 > > > network 192.168.1.0 0.0.0.0 area 20 > > > > > > Should I define different areas ? > > > > > > Thanks for your time > > > > > > John > > > > > > > > > ** > > > > > > visit http://www.solution6.com > > > visit http://www.eccountancy.com - everything for accountants. > > > > > > UK Customers - http://www.solution6.co.uk > > > > > > * > > > This email message (and attachments) may contain information that is > > > confidential to Solution 6. If you are not the intended recipient you > > cannot > > > use, distribute or copy the message or attachments. In such a case, > > please > > > notify the sender by return email immediately and erase all copies of > > the > > > message and attachments. Opinions, conclusions and other information in > > > this message and attachments that do not relate to the official business > > of > > > Solution 6 are neither given nor endorsed by it. > > > * Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48703&t=48463 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Where are the networking jobs? (was: question [7:48701]
IS this also true for CCIE Are CCIE's finding any jobs ??? What's the point and hype about all this grueling studies when there are no jobs out there According to the news most major companies are hiring cheap labor with H1-B Visas. Who are working their butts off for 40K / yr. There is a big lobby in congress that wants to increse the H1-B visas by another 163,000 a year ?? Imagine this In this economy ?? The govt is not for the people.its for the fortune 500. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48704&t=48701 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RE: All 0's MAC Root Bridge [7:48578]
Kim Graham wrote: > > Sorry for being so vague, it was first thing in the morning, > just getting my first cup of coffee and rubbing the sleep out > of my eyes. (Yes, I need a life if I wake up thinking about > these questions.) > > This is a 6513. > > That is what I thought. The BID is the MAC address on the > card, hence why I am curious as to how this has come about. :) > > Here is the header output of the show spantree command, the > second 6513 shows spanning tree as disabled: > > VLAN 1 > Spanning tree mode PVST+ > Spanning tree type ieee > Spanning tree enabled > > Designated Root 00-00-00-00-00-00 > Designated Root Priority0 > Designated Root Cost0 > Designated Root Port1/0 > Root Max Age 0 sec Hello Time 0 sec Forward Delay 0 sec > > Bridge ID MAC ADDR 00-00-00-00-00-00 > Bridge ID Priority 32769 (bridge priority: 32768, sys > ID ext: 1) > Bridge Max Age 20 sec Hello Time 2 sec Forward Delay 15 sec > > All the ports show as VLAN1. > -- > > As my curiosity grew I checked "Per-VLAN". > Our closests are configured to look at one of the core switches > as the root bridge, the other core as the secondary root > bridge. I went to one of the closets and received the same > output as above for "show spantree". > But if I issue "show spantree I receive the information > that shows me which device it uses as the root bridge. > > Would it be safe to say then that due to PVST+ the MAC address > comes out as all zero's when you issue "show spantree" without > a VLAN designation? I guess so. Thanks for discovering this for us. It's pretty strange, but on the other hand it sort of makes sense. When you do PVST, the MAC address is different for each VLAN. If you don't specify a VLAN, the output doesn't know what to say, I guess. > > Kim > > > > > From: "Priscilla Oppenheimer" > > Date: 2002/07/11 Thu PM 03:20:41 EDT > > To: [EMAIL PROTECTED] > > Subject: RE: All 0's MAC Root Bridge [7:48578] > > > > Kim Graham wrote: > > > > > > The other day I was delving a bit into spanning tree and I > came > > > across something that puzzled me. > > > > > > Searching out which device was the root bridge I found the > MAC > > > address (BID) on the root bridge to be all zero's. (show > > > spantree snippets). > > > > > > Spanning tree mode PVST+ > > > Spanning tree type ieee > > > Designated Root 00-00-00-00-00-00 > > > Bridge ID MAC ADDR 00-00-00-00-00-00 > > > > > > Without finishing chapter 7 (Spanning Tree) in my LAN > switching > > > book I am puzzled as to whether this is a preset MAC > address or > > > self assigned. > > > > The Bridge ID MAC address is preassigned to the switch by the > manufacturer. > > The address would be one of the many assigned to the > supervisor or backplane > > in Cisco's case, depending on the switch model. Which model > are you using? > > > > Seeing all zeroes is extremely strange, as you know, since > you're asking > > this question! ;-) > > > > A few things I'm wondering about: > > > > What state was the spanning tree in? Was it still converging? > Did the outpu > > continue to say this weirness, or did it change after a while? > > For which VLAN were you displaying this information? I notice > that you're > > doing Per-VLAN Spanning Tree. Could this info be for a VLAN > that doesn't > > actually exist or for a VLAN where spanning tree is disabled? > Can you send > > us your config? > > > > I guess the bottom line is that we need more info from you. > > > > Priscilla > > > > > > > > Any thoughts? Why or how did this occur? > > > > > > Kim > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48705&t=48578 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Broadcast Mac Address ? [7:48694]
Brunner Joseph wrote: > > 03-bf-ac-10-32-1d > > What makes this mac address broadcast (at layer 2) ? Its used > by MS TERM SERVER. It's a Layer 2 multicast address. The first bit transmitted, which on Little Endian Ethernet is the least significant bit of the first byte, is one. The first byte is 0011. That makes it a multicast. (A broadcast would be all ones in all six bytes.) > > I searched on google before posting here, but all I could find > out was some common ranges of broadcast mac addresses, and the > vendor code for the first part of this mac. I couldn't find the vendor code. The vendor code would be 02-BF-AC, which I couldn't find in any of the lists I looked at, for some reason. > > I was looking for a pattern or a formula I could use to deduce > mac's > like this on my network in the future. You may have done about as much as you can do. Somehow you figured out that it's Microsoft and you determined that it's a broadcast (multicast, actually). You could also study the packets or do some research on this particular application. The only patterns or forumulas are the ones I mentioned above, such as the first bit being a one in multicasts and broadcasts. Here's what I like to say about such things: The Internet has fallen prey to entropy (the degradation of the matter and energy in the universe to an ultimate state of inert uniformity). ;-) Priscilla Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48706&t=48694 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2501 router with bad E0 ? [7:48707]
I have a Cisco 2501 that I can not get the Ethernet 0 interface to work. If I do a show interface, the line and line protocol are both up, I can ping the routers address from a console session, but i can not ping the PC that is on the same 8 port switch as the router. I have 2 other routers that are configured almost identically...the IP address is the only different value, that work just fine...so I don't think it is the transceiver, or cable or switch. I don't have a smartnet on these. Can anyone give me an idea on what Cisco might charge to repair the router ? Or is there another place that would repair for less cost ? Thank you.Gary Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48707&t=48707 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Looking for the best storage strategy [7:48708]
Folks, I searching for the best way to do the backup for servers. Currently we have local backup tape devices running Backup Exec. I need to find the best way to take this local backup to some kind of remote device. I understand there are many ways such as SAN, Fiber Channel, etc.. but would like to best way to do the automatic backup of servers remotely. Any thoughts would be greatly appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48708&t=48708 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VOIP with 2600 Router [7:48709]
I have configured 2600 routers at two different sites connected to PBX. Both have internet connection. At site A, I can make calls to site B without any problems with almost toll quality. My problem is that I cannot make call from site B to site A. Both routers are configured identical(except for the dial pattern of course). PBXs are configured with correct dial plan and udp. I have no idea why I cannot make a call from site B to site A. I would appreciate if someone can give me tips on this. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48709&t=48709 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cat switch 3550 [7:48695]
Brad is recommending 3550 switch for the ccie lab. what is the difference between a 3548 (or 3524 for that matter) switch and a 3550? Thanks, Frank - Do You Yahoo!? New! SBC Yahoo! Dial - 1st Month Free & unlimited access Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48695&t=48695 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
The Elements of Networking Style by Padlipsky [7:48692]
The June 2002 Internet Protocol Journal has a book review of a reissue of a 1985 book "The Elements of Networking Style" by M.A. Padlipsky. Review by Peter H. Salus. http://www.cisco.com/warp/public/759/ipj_5-2/ipj_5-2_reviews.html For those that were there "at the beginning", Howard, I'd like to hear your comments. All; The journal has fine articles. On line at www.cisco.com/ipj You can sign up for print copies. They come prepunched to save in a three ring binder. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48692&t=48692 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cat switch 3550 [7:48695]
"full" L3 and extensive QoS by the time the 3550 is introduced into the Lab, you can expect BGP, EIGRP, OSPF, RIP v1 and v2. I haven't looked in depth at the QoS yet, but to judge from the Config guide, there is a LOT that can be done. Note that according to CCO, after Novemebr 4th, Lab candidates will be responsible for any and all supported features on the 3550. I have not had Cisco confirm this directly as yet, but it is expected that there will be two of these guys in the Lab, with all that may imply. HTH Chuck ""Frank Alvandi"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Brad is recommending 3550 switch for the ccie lab. > > what is the difference between a 3548 (or 3524 for that matter) switch and > a 3550? > > Thanks, > > > > Frank > > > > > > - > Do You Yahoo!? > New! SBC Yahoo! Dial - 1st Month Free & unlimited access Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48711&t=48695 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Exercise for Chuck (was RE: Terminal server configuration [7:48696]
>Okay, figured it out. > >Imagine this: > >If you have >vty 0 4 > transput output none > >that reverse telnet doesn't work =) > >Thanks for the help anyways Chuck! > >Dan > As an exercise for Chuck, we leave the question, why isn't reverse telnet the tenlet protocol? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48696&t=48696 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Broadcast Mac Address ? [7:48694]
03-bf-ac-10-32-1d What makes this mac address broadcast (at layer 2) ? Its used by MS TERM SERVER. I searched on google before posting here, but all I could find out was some common ranges of broadcast mac addresses, and the vendor code for the first part of this mac. I was looking for a pattern or a formula I could use to deduce mac's like this on my network in the future. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48694&t=48694 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco IP Telephony [7:48673]
For the folks who have tis up and running-- what tools, if any, are being used to make sure the VOIP service is operating at the desired level (delay and jitter bounds within spec, call cut-offs within spec, etc.) Thanks Brad Ellis wrote: > > I setup call mangler for us to replace our analog system. It's been pretty > much a work horse for the past 5 months. From my experience, it's a pain in > the butt to set it up, but if you set it up right, it's awesome. I cant say > enough good things about it (after it's setup...the setting up part sucks) > We did a straight out full replace (but we only have 6 or so phones and 4 > analog lines to deal with). If you have more than 15 phones, I'd go with a > planned parallel migration route. Just my thoughts > > thanks, > -Brad Ellis > CCIE#5796 (R&S / Security) > Network Learning Inc > [EMAIL PROTECTED] > www.optsys.net (Cisco hardware) > > ""Naomi James"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > We are thinking about getting Cisco's IP Telephony equipment. Is anyone > > using it. If so, can you tell me your thoughts about it (success/failure > > stories). Did it replace your phone lines or run in paralell? Are you > > still able to make 800 and 911 calls with the IP phones. > > > > Thanks for any information. > > > > Naomi James > > Computer Services and Information Technology > > Savannah State University > > 912-356-2509 > > > > [GroupStudy.com removed an attachment of type image/gif which had a name > of > > Mabelt.gif] > > > > [GroupStudy.com removed an attachment of type image/gif which had a name > of > > Mabelb.gif] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48689&t=48673 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Class C summarization question [7:48367]
ah, but that is old world classful thinking. as per RFC 1812, effectively there is no such thing as subnet zero any longer. per that RFC, all routers SHOULD route to any address in the form of network:host, or network:subnet:host. subnet zero is a holdover from the old world. it is there because of the concern that there is still so much old world equipment out there. RFC 1812 is dated June 1995, and one wonders how long it takes in practical terms for all manufacturers and all software stack writers to get all their stuff up to standard.. not to mention how long it takes for the old stuff to be removed from production. hhhm. a brief look through ARIN seems to indicate that assignments are not made out of "subnet zero" space but that is still a different question. a summarization produces a single route where several existed before. if you see a summary 192.1.0.0/16, why would you think that 192.1.0.0/24 is unreachable? Chuck ""Roberts, Larry"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Just to jump in late on this, but... The question doesn't ask how many of > those class "C" are usable, which would be dependant on subnet O, but > instead the question was how many you would be able to summarize. A /20 > would in fact summarize 16, 14 of which are useable without subnet zero... > > > Thanks > > Larry > > > -Original Message- > From: Dain Deutschman [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, July 10, 2002 4:05 PM > To: [EMAIL PROTECTED] > Subject: Re: Class C summarization question [7:48367] > > > Hey everyone, > > Thanks for all of your help. I have decided that 16 must be correct since it > makes perfect sense and most of you back that up as well. I think the test > question was just plain wrong. Anyway...I passed the CCNP Routing exam today > so I'm pretty happy. : ) Groupstudy is a great learning resource. Thanks > everyone. Dain. > > ""Dain Deutschman"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I'm confused about a practice question for BSCN that I came across: > > > > Your routing tables are getting very large and you need to configure > > route summarization. How many class C internet addresses can you > > summarize with > a > > /20 CIDR block? > > > > Answer: 8 > > > > Would it not be 16? Where am I going wrong? > > > > -- > > Dain Deutschman > > CNA, MCP, CCNA > > Data Communications Manager > > New Star Sales and Service, Inc. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48693&t=48367 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router for Practice [7:48654]
After the lab changes are made, since they are removing Token Ring, I dont see the NEED for a 2504, but it does have 2 serial interfaces, and an isdn interface as well. not a bad router, it'll be fine in a lab, you just wont need the token ring capabilities of it (layer 3 is still the same, so it's still a good router) thanks, -Brad Ellis CCIE#5796 (R&S / Security) [EMAIL PROTECTED] Cisco home labs: www.optsys.net ""Reza"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Brad, > No more need for 2504,s?. > > Reza > > > ""Brad Ellis"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Here's the lab kit Im recommending to tackle the new and improved CCIE R&S > > Lab Exam: > > > > Three Cisco 2501 routers > > Two Cisco 2503 routers (ISDN) > > One Cisco 2511 router (Access Server) > > One Cisco 2522 router (FR switch) > > One 2620 router (voice/isl trunking) > > One 2610 router (voice) > > Catalyst 3550 > > ISDN Simulator > > misc cables, xcvrs, etc > > > > thanks, > > -Brad Ellis > > CCIE#5796 (R&S / Security) > > Network Learning Inc > > [EMAIL PROTECTED] > > www.optsys.net (Cisco hardware) > > > > ""R.S.Sundar"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Hello All, > > > > > > I would like to know what router configuration to be purchased > > > for practicising CCIE Routing and Switching Lab Exam. > > > > > > Please give the details of book also if possible. > > > > > > Regards, > > > R.S.Sundar > > > System Support Manager > > > Future Software Limited > > > > > > > > > *** > > > This message is proprietary to Future Software Limited (FSL) > > > and is intended solely for the use of the individual to whom it > > > is addressed. It may contain privileged or confidential information > > > and should not be circulated or used for any purpose other than for > > > what it is intended. > > > > > > If you have received this message in error, please notify the > > > originator immediately. If you are not the intended recipient, > > > you are notified that you are strictly prohibited from using, > > > copying, altering, or disclosing the contents of this message. > > > FSL accepts no responsibility for loss or damage arising from > > > the use of the information transmitted by this email including > > > damage from virus. > > > > > > *** Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48691&t=48654 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OSPF Problem, resolved [7:48474]
In the config provided the interface subnets were configured into OSPF via the redist as well as via the network command-- which would have precendence-- redist or network? Thanks Peter van Oene wrote: > > Hi John, > > Although what you have works, I have one suggestion. Redistributing routes > into OSPF (ie redist connected) causes your interface addresses to enter > the OSPF domain as type 5 LSA's. Type 5 LSA's flood throughout the entire > OSPF domain unconstrained and cannot be controlled with the nice ABR knobs > which provide varying degrees of stubbiness. It is generally better > practise to explicitly add to OSPF (via a network command) each interface > on each router that you wish to be reachable in the OSPF domain. If > interfaces are not likely to form adjacencies (ie stub network interfaces), > configuring them as passive will save on some processor cycles and provide > a little security. By doing things this way, your interface addresses > enter OSPF as type1 (or 2 in some cases) LSA's which can then be > constrained by ABR's at area borders using both the aforementioned knobs, > or per prefix filtering if you like. > > Pete > > At 06:41 AM 7/10/2002 m??, you wrote: > >Hi All, thanks for the replies. Yes my config was all over the shop. > >Replaced it in both routers with the following (completely changed some > >things) > > > >Router B > > > >interface Ethernet0 > > ip address 192.168.2.20 255.255.255.0 > > no ip directed-broadcast > >! > >interface Serial0 > > ip address 192.168.1.20 255.255.255.0 > > no ip directed-broadcast > > encapsulation ppp > >! > >router ospf 10 > > redistribute connected subnets > > network 192.168.0.0 0.0.255.255 area 0 > > > >Router A > > > >interface Ethernet0 > > ip address 192.168.3.10 255.255.255.0 > > no ip directed-broadcast > >! > >interface Serial0 > > bandwidth 64 > > clock rate 64000 > >ip address 192.168.1.10 255.255.255.0 > > no ip directed-broadcast > > encapsulation ppp > >! > >router ospf 10 > > redistribute connected subnets > > network 192.168.0.0 0.0.255.255 area 0 > > > >All is working fine now, thanks for your help > > > >John > > > > > >** > > > >visit http://www.solution6.com > >visit http://www.eccountancy.com - everything for accountants. > > > >UK Customers - http://www.solution6.co.uk > > > >* > >This email message (and attachments) may contain information that is > >confidential to Solution 6. If you are not the intended recipient you cannot > >use, distribute or copy the message or attachments. In such a case, please > >notify the sender by return email immediately and erase all copies of the > >message and attachments. Opinions, conclusions and other information in > >this message and attachments that do not relate to the official business of > >Solution 6 are neither given nor endorsed by it. > >* Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48690&t=48474 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router for Practice [7:48654]
Brad Ellis wrote: > After the lab changes are made, since they are removing Token > Ring, I dont see the NEED for a 2504, but it does have 2 serial > interfaces, and an isdn interface as well. not a bad router, it'll > be fine in a lab, you just wont need the token ring capabilities of > it (layer 3 is still the same, so it's still a good router) So I guess a 3920 would also be a waste then? I am building my lab now. Have two 2501s, a 2621, and a 3640, as well as a Cisco micro webserver for tftp and a Sun V100 all screwed into a small rack. I have enhanced DSL with 5 static IPs. I am thinking of adding the following (as cash allows): 2501x1 2511x1 2522x1 5000x1 2503x2 2513x3 (ports, baby!) LS1010 ISDN simulator Missing something? Anything excess? Switch something for something else? Interested in CCIE lab including voice and ATM capabilities. Thanks! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48712&t=48654 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Error while booting up router [7:48713]
Hi All, I have got a Cisco 2521 router (4 serial, 1 token and 1 BRI interface). After rebooting I am consistently getting following error: %SYS-3-SUPNONE: Registry 0 doesn't exist -Process= "Init", ipl= 4, pid= 1 -Traceback= 30FD840 30FDCE8 30990AA 30C2116 30C104C 30C1168 30C1BCA 31039BC 3103A20 30FA2EC 30FA506 Although I am not sure of ISDN interface which is not configured, everything else seems to be working fine though. Any ideas on what can cause this error. Thanks - Host up to 30 websites for only US$25 per month http://Shanje.com - Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48713&t=48713 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]